Gargoyle Forum

Any fix for this?

Running a WNDR3700v2 Gargoyle 1.5.4

I have 22 devices assigned static IP's and have the Block MAC addresses assigned a static IP that connect from a different IP checked.

My son is still able to get around the rules I have set by changing his IP

One way of temporarily getting round this would be to possibly set a quota for ips in certain ranges - not checked properly but it would be fairly quick to check if it would help

Looking at this, set your fixed ip's in a tight group say 192.168.1.1-192.168.1.30

Then in quotas have the range 192.168.1.31-192.168.1.254 blocked for Internet or you could make it slow so he doesn't realise

Would be nice to get the actual bug resolved though

Well I got around it. I threaten to throw his laptop out the window if I caught him changing his IP again...

cArNaGe wrote:Well I got around it. I threaten to throw his laptop out the window if I caught him changing his IP again...

I'd still set a very low qos % for the catch all class, so he loses out when changing ip. Not sure what he would then gain by changing it. Show him it and he won't change it then

Ok,

I think I have a fix for this in the repo now. I attach the revised file. If you will unzip it and replace the file of the same name on your router located at /usr/lib/gargoyle_firewall_util life should improve.

Please post your results here to confirm that the fix is good.

Thanks for your work on identifying and isolating this bug.

** Found a way

Winscp and then used commander interface to drag and drop it

That doesn't seem to make any difference for me:

Copied .sh file into /usr/lib/gargoyle/firewall_util
rebooted router

Set IP on my pc to differ from one set in dhcp and ensure block mac is ticked.

For good measure enabled and disabled pc port

Still able to connect, checked in connection list and it is listing with the new IP. (I set gateway/dns as the router ip address)

Let me know if you need me to try anything else

The target directory for this file is /usr/lib/gargoyle_firewall_util. You will know you are in the right place when you are replacing a file of the same name in that directory.

This directory is not the one you listed in your previous post so I suspect you just dropped the file in the wrong location.

If that does not fix it for you then show me the output of the command "iptables -vnL forward -t filter" after connecting with the blocked MAC.

Also show me the output of

ls -l /usr/lib/gargoyle_firewall_util

I tested the fix with v1.5.4.

Sorry yes that was a typo - I renamed the old one before copying the new one in place.

I also know I overwrote a valid file as I just had grief from the family, just got in this evening (I did the work this morning) without realising I just reset my wireless rules with the file

I am doing this on 1.5.4. My ip I set as 192.168.1.211 and it is connected by wired connection

Hopefully these are what you wanted

Many thanks for your assistance on this, happy todo whatever is required to assist in resolving it